SQL Injection exists in the Project Log 1.5.3 component for Joomla! via the search parameter.Referenceshttps://www.exploit-db.com/exploits/44124/http://packetstormsecurity.com/files/146454/Joomla-Project-Log-1.5.3-SQL-Injection.html
